]> Git Repo - secp256k1.git/commitdiff
projects / secp256k1.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | combined (merge: 0585b8b 7b50483)
Merge #710: Eliminate harmless non-constant time operations on secret data.
authorTim Ruffing <[email protected]>
Mon, 24 Feb 2020 13:02:44 +0000 (14:02 +0100)
committerTim Ruffing <[email protected]>
Mon, 24 Feb 2020 13:04:36 +0000 (14:04 +0100)
7b50483ad789081ba158799e5b94330f62932607 Adds a declassify operation to aid constant-time analysis. (Gregory Maxwell)
34a67c773b0871e5797c7ab506d004e80911f120 Eliminate harmless non-constant time operations on secret data. (Gregory Maxwell)

Pull request description:

  There were several places where the code was non-constant time
   for invalid secret inputs.  These are harmless under sane use
   but get in the way of automatic const-time validation.

  (Nonce overflow in signing is not addressed, nor is s==0 in signing)

ACKs for top commit:
  sipa:
    utACK 7b50483ad789081ba158799e5b94330f62932607
  real-or-random:
    ACK 7b50483ad789081ba158799e5b94330f62932607 I read the code carefully and tested it
  jonasnick:
    reACK 7b50483ad789081ba158799e5b94330f62932607

Tree-SHA512: 0776c3a86e723d2f97b9b9cb31d0d0e59dfcf308093b3f46fbc859f73f9957f3fa977d03b57727232040368d058701ef107838f9b1ec98f925ec78ddad495c4e

1  2 
src/modules/ecdh/main_impl.h patch | diff1 | diff2 | blob | history

diff --cc src/modules/ecdh/main_impl.h
Simple merge
Empty description
This page took 0.02547 seconds and 4 git commands to generate.